Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lB47mlO74C4stDl6bRoB2Aym5Bg.cer
File: lB47mlO74C4stDl6bRoB2Aym5Bg.cer (raw, json)
Hash identifier: XHInP8TLcPzSQyIy4Pjf8I/TEuB32flV2FA4k317OPQ=
Subject key identifier: 94:1E:3B:9A:53:BB:E0:2E:2C:B4:39:7A:6D:1A:01:D8:0C:A6:E4:18
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424457B74987D34275D38125EE1445131
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/lB47mlO74C4stDl6bRoB2Aym5Bg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200014
IP: 185.39.96.0/22
IP: 2a01:48e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:7b:74:98:7d:34:27:5d:38:12:5e:e1:44:51:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=941e3b9a53bbe02e2cb4397a6d1a01d80ca6e418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:53:46:1e:f8:87:79:48:22:12:e5:3e:38:4d:
81:14:fb:02:9c:1c:bd:46:c3:ef:04:02:6e:54:6b:
74:b2:00:71:d3:8c:3c:01:c2:db:89:7f:cd:96:c7:
18:11:01:14:27:df:09:73:cc:db:04:9f:4b:e1:0c:
2e:19:61:24:ca:a4:55:49:69:1a:d0:97:1b:8d:3c:
57:70:78:0a:60:1f:a3:63:d2:28:7a:c9:67:8d:92:
fb:86:eb:72:90:a1:f7:3d:33:fb:19:61:57:c5:7b:
2f:94:92:28:99:3d:a6:d7:f9:28:f0:53:c3:7d:83:
98:db:b5:0c:ac:7f:7d:c7:d3:c0:db:0f:78:01:a4:
22:da:dd:2c:76:0d:14:e3:fc:06:f8:62:eb:25:8b:
0c:0d:ac:61:40:08:11:1c:f9:5e:8c:4b:08:17:de:
a1:0f:7b:28:54:a2:62:ee:b1:cb:43:d3:bd:e6:f9:
a6:f1:1b:42:11:aa:43:53:98:7c:27:ca:1e:89:a9:
a8:d9:87:ea:22:0b:35:93:d9:de:20:df:d4:0c:fe:
1c:75:ff:5b:1f:e8:25:63:03:ae:ba:71:d0:b7:07:
e6:8e:ad:55:d7:df:ce:7b:37:23:97:6e:01:6e:b8:
fc:ba:22:a1:14:ee:6a:e4:46:09:66:8a:1b:2e:d2:
0e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1E:3B:9A:53:BB:E0:2E:2C:B4:39:7A:6D:1A:01:D8:0C:A6:E4:18
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/lB47mlO74C4stDl6bRoB2Aym5Bg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.96.0/22
IPv6:
2a01:48e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200014
Signature Algorithm: sha256WithRSAEncryption
5e:59:c2:e3:bc:df:ce:2c:d9:2a:76:61:6a:4a:2a:42:f4:53:
6f:65:2f:cc:5f:f5:49:b2:04:a3:f4:36:87:62:f6:d9:79:1e:
54:8c:a1:49:b0:6f:dc:85:db:5e:96:8c:a8:29:54:6b:04:50:
31:32:8b:e2:b6:fb:a7:e0:14:06:58:4a:28:4b:ee:7f:6f:91:
7d:83:43:ef:db:79:c4:21:89:ba:7d:1e:5c:95:2c:71:70:af:
1b:af:2a:1d:75:22:9f:a4:56:8b:27:43:2e:31:98:0a:61:e0:
f2:44:e7:9b:bb:20:6e:00:3c:2c:4f:30:84:b3:35:0c:f0:1e:
fd:ed:fc:40:50:98:d1:b4:ce:96:85:cf:a4:36:20:da:bd:a6:
42:c5:d2:e4:be:ad:fe:8d:be:ff:3e:cf:89:d5:b0:d1:4b:a1:
46:f5:62:12:a2:94:c1:54:16:0e:ef:6a:75:ed:b7:69:2b:ce:
1a:8b:02:6f:61:c8:00:86:64:6e:14:5b:f4:ea:0a:53:83:01:
d5:d6:63:13:61:72:84:38:fb:10:eb:83:43:77:54:8c:23:28:
4e:6e:47:f0:e1:56:a2:40:78:f7:37:2b:d4:68:0d:e6:1b:94:
99:c3:fe:5f:35:c4:07:98:16:a0:93:37:e7:e0:00:cc:08:ff:
3d:ae:d7:8a
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQkRXt0mH00J104El7hRFExMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMjM0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDFlM2I5YTUzYmJlMDJlMmNiNDM5N2E2ZDFhMDFkODBjYTZlNDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFNGHviHeUgiEuU+OE2BFPsCnBy9
RsPvBAJuVGt0sgBx04w8AcLbiX/NlscYEQEUJ98Jc8zbBJ9L4QwuGWEkyqRVSWka
0JcbjTxXcHgKYB+jY9IoeslnjZL7hutykKH3PTP7GWFXxXsvlJIomT2m1/ko8FPD
fYOY27UMrH99x9PA2w94AaQi2t0sdg0U4/wG+GLrJYsMDaxhQAgRHPlejEsIF96h
D3soVKJi7rHLQ9O95vmm8RtCEapDU5h8J8oeiamo2YfqIgs1k9neIN/UDP4cdf9b
H+glYwOuunHQtwfmjq1V19/Oezcjl24Bbrj8uiKhFO5q5EYJZoobLtIOvQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFJQeO5pTu+AuLLQ5em0aAdgMpuQYMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YzLzA4ZTQw
NC1mNDI2LTQyZTItOTU5NC1kYTk5ZTM0Y2MzMGIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvMDhlNDA0
LWY0MjYtNDJlMi05NTk0LWRhOTllMzRjYzMwYi8xL2xCNDdtbE83NEM0c3REbDZi
Um9CMkF5bTVCZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuSdgMA0EAgACMAcDBQAqAUjgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMNTjANBgkqhkiG9w0BAQsFAAOCAQEAXlnC47zfzizZ
KnZhakoqQvRTb2UvzF/1SbIEo/Q2h2L22XkeVIyhSbBv3IXbXpaMqClUawRQMTKL
4rb7p+AUBlhKKEvuf2+RfYND79t5xCGJun0eXJUscXCvG68qHXUin6RWiydDLjGY
CmHg8kTnm7sgbgA8LE8whLM1DPAe/e38QFCY0bTOloXPpDYg2r2mQsXS5L6t/o2+
/z7PidWw0UuhRvViEqKUwVQWDu9qde23aSvOGosCb2HIAIZkbhRb9OoKU4MB1dZj
E2FyhDj7EOuDQ3dUjCMoTm5H8OFWokB49zcr1GgN5huUmcP+XzXEB5gWoJM35+AA
zAj/Pa7Xig==
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:01:06 2025 by rpki-client